Version: Next

Configuration

This page covers configuration options for the Facebook identity provider beyond the basic setup.

Configuration options

Below is a non-exhaustive list of some of the most common configuration options. For more details on all options, check the FacebookIdpConfig in-code documentation.

Custom account validation

You can customize the validation for Facebook account details before allowing sign-in. By default, the validation checks that the received account details contain a non-empty userIdentifier.

The default validation logic:

static void validateFacebookAccountDetails(
  final FacebookAccountDetails accountDetails,
) {
  if (accountDetails.userIdentifier.isEmpty) {
    throw FacebookUserInfoMissingDataException();
  }
}

To customize validation, provide your own facebookAccountDetailsValidation function:

final facebookIdpConfig = FacebookIdpConfigFromPasswords(
  // Optional: Custom validation for Facebook account details
  facebookAccountDetailsValidation: (FacebookAccountDetails accountDetails) {
    // Throw an exception if account doesn't meet custom requirements
    if (accountDetails.userIdentifier.isEmpty) {
      throw FacebookUserInfoMissingDataException();
    }
    // Example: Require email to be present
    if (accountDetails.email == null || accountDetails.email!.isEmpty) {
      throw FacebookUserInfoMissingDataException();
    }
  },
);

note

Users may choose not to share their email or other information during the Facebook login flow. Adjust your validation function carefully to avoid blocking legitimate users.

FacebookAccountDetails

The facebookAccountDetailsValidation callback receives a FacebookAccountDetails record with the following properties:

Property	Type	Description
`userIdentifier`	`String`	The Facebook user's unique identifier (UID)
`email`	`String?`	The user's email address (may be null)
`name`	`String?`	The user's display name from Facebook
`image`	`Uri?`	URL to the user's profile image

Example of accessing these properties:

facebookAccountDetailsValidation: (accountDetails) {
  print('Facebook UID: ${accountDetails.userIdentifier}');
  print('Email: ${accountDetails.email}');
  print('Display name: ${accountDetails.name}');
  print('Profile image: ${accountDetails.image}');

  // Custom validation logic
  if (accountDetails.email == null) {
    // Handle case where user didn't share email
  }
},

info

The properties available depend on the permissions requested and what the user consented to share.

Accessing Facebook APIs

The default setup allows access to basic user information, such as name and email. You may require additional permissions to access other Facebook APIs, such as accessing a user's friends, posts, or pages.

The default permissions requested are:

email: Access to user's email address.
public_profile: Access to user's basic profile information.

To request additional permissions, you will need to:

Ensure the required permissions are configured in your Facebook App settings (navigate to Use cases > Customize > Permissions and features in the Facebook App Dashboard).
Request access to the permissions when signing in. Do this by setting the permissions parameter of the FacebookSignInWidget or FacebookAuthController.

A full list of available permissions can be found in the Facebook permissions reference.

info

Adding additional permissions may require App Review depending on the sensitivity of the requested permissions and your app's use case.

Accessing Facebook APIs on the server

On the server side, you can access Facebook APIs using the access token. The getExtraFacebookInfoCallback in FacebookIdpConfig receives the access token and can be used to call Facebook Graph APIs:

import 'package:http/http.dart' as http;

final facebookIdpConfig = FacebookIdpConfigFromPasswords(
  // Optional: Extract additional info from Facebook Graph APIs
  getExtraFacebookInfoCallback: (session, {
    required accountDetails,
    required accessToken,
    required transaction,
  }) async {
    // Use accessToken to call Facebook Graph APIs and store additional info
    // Example: Access user's friends list
    final response = await http.get(
      Uri.https('graph.facebook.com', '/v21.0/me/friends'),
      headers: {'Authorization': 'Bearer $accessToken'},
    );
    // Process response and store additional info in the database
  },
);

When using the external serverpod_auth_idp_flutter_facebook package, you can configure the App ID in your Flutter application.

Passing configuration in code

You can pass the App ID directly when initializing the Facebook Sign-In service:

await client.auth.initializeFacebookSignIn(
  appId: 'YOUR_FACEBOOK_APP_ID',
);

If the appId value is not supplied when initializing the service, the provider will automatically fetch it from the FACEBOOK_APP_ID environment variable. This approach is useful for different configurations per platform or build environment.

Using environment variables

Alternatively, you can pass the App ID during build time using the --dart-define option. The Facebook Sign-In provider supports the following environment variable:

FACEBOOK_APP_ID: Your Facebook App ID.

Example usage:

flutter run -d <device> \
  --dart-define="FACEBOOK_APP_ID=your_app_id"

This approach is useful when you need to:

Manage separate App IDs for different platforms (Android, iOS, Web, macOS) in a centralized way.
Avoid committing App IDs to version control.
Configure different credentials for different build environments (development, staging, production).

tip

You can also set these environment variables in your IDE's run configuration or CI/CD pipeline to avoid passing them manually each time.

Configuration options​

Custom account validation​

FacebookAccountDetails​

Accessing Facebook APIs​

Accessing Facebook APIs on the server​

Configuring Facebook Sign-In on the app​

Passing configuration in code​

Using environment variables​